Windows Server Enterprise DNS 注册事件 ID 5774

我有一个 Windows DC，它每天都会“冻结”，甚至必须重新启动 (VM) 才能登录。查看系统日志，我发现以下几个错误：

The dynamic registration of the DNS record '_ldap._tcp.dc._msdcs.usd385.org. 
600 IN SRV 0 100 389 AD1.usd385.org.' failed on the following DNS server:  

DNS server IP address: 199.191.128.106 
Returned Response Code (RCODE): 5 
Returned Status Code: 9017  

For computers and users to locate this domain controller, this record must be 
registered in DNS.  

USER ACTION  
Determine what might have caused this failure, resolve the problem, and 
initiate registration of the DNS records by the domain controller. To 
determine what might have caused this failure, run DCDiag.exe. To learn more 
about DCDiag.exe, see Help and Support Center. To initiate registration of 
the DNS records by this domain  controller, run 'nltest.exe /dsregdns' from 
the command prompt on the domain controller or restart Net Logon service. 

Or, you can manually add this record to DNS, but it is not recommended.  

ADDITIONAL DATA 
Error Value: DNS bad key.

IP 地址 199.191.128.106 解析为 dbru.br.ns.els-gms.att.net，这显然不在我们的本地网络内，属于我们的 ISP。有人可以提供一些提示，说明如何排除此 IP 地址被 DNS 注册吗？我不确定这是否会导致“冻结”问题，但这似乎是一个不错的起点。

先谢谢您的帮助。